research-article

Context Information-based Application Access Control Model

Authors:

Young-Gab Kim,

Yonghan LeeAuthors Info & Claims

IMCOM '16: Proceedings of the 10th International Conference on Ubiquitous Information Management and Communication

Article No.: 75, Pages 1 - 5

https://doi.org/10.1145/2857546.2857623

Published: 04 January 2016 Publication History

Get Access

Abstract

Access control has long been a central topic in software security. Having proposed a number of different control mechanisms, including MAC, DAC, and RBAC, researchers are now introducing control models that make use of new context information, such as time, and location. Unfortunately, because these have been based on existing security paradigms, their use of context is often unintuitive, and insufficiently separated from business and processing logic. This paper proposes a new model for access control called CIAAC (Context Information-based Application Access Control). CIAAC is specifically designed to separate context awareness and access control policies from business and processing logic, allowing operators of business applications to change access control policies more freely in response to the external security environment.

References

[1]

Dey, A. K. 2001. Understanding and using context. 2001. Personal and Ubiquitous Computing, 5, 1 (Feb. 2001), 4--7.

Digital Library

Google Scholar

[2]

Kizza, J. M. 2013. A guide to computer network security. Springer-Verlag.

Digital Library

Google Scholar

[3]

Kim, K., Ko, H., and Hwang, H. 2007. Context RBAC/MAC access control for ubiquitous environment. Lecture Notes in Computer Science, 4443 (Apr. 2007), 1075--1085.

Digital Library

Google Scholar

[4]

Sandhu, R. S., Coyne, E. J., Feinstein, H. L., and Youman, C. E. 1996. Role-based access control models. IEEE Computer, 29, 2 (Feb. 1996), 38--47.

Digital Library

Google Scholar

[5]

Covington, M. J., Moyer, M. J., and Ahamad, M. 2000. Generalized role-based access control for securing future applications. In Proceedings of the 23rd National Information Systems Security Conference (Baltimore, Maryland, October 16-19, 2000). NISSC '00, 40--51

Google Scholar

[6]

Park, S.-H., Han, Y.-J., and Chung, T.-M. 2006. Context-role based access control for context-aware application. Lecture Notes in Computer Science, 4208 (Sep. 2006), 572--580.

Digital Library

Google Scholar

[7]

Kim, Y.-G, Moon, C.-J. Jeong, D., Lee, J.-O., Song, C.-Y., and Baik, D.-K. 2005. Context-aware access control mechanism for ubiquitous applications. Lecture Notes in Artificial Intelligence, 3528 (Jun. 2005), 236--242.

Digital Library

Google Scholar

[8]

Kim, Y. -G., and Cha, S. 2013. Dynamic access control policy based on RBAC for ubiquitous applications. Information-An International Interdisciplinary Journal, 16, 9(B) (Sep. 2013). 7175-7190.

Google Scholar

Cited By

View all

Mohamed Sulaiyam ALAmri S(2021)An Intelligent Access Control ModelQuality Control - Intelligent Manufacturing, Robust Design and Charts10.5772/intechopen.95459Online publication date: 24-Mar-2021
https://doi.org/10.5772/intechopen.95459
Suganthy APrasanna Venkatesan V(2019)An Introspective Study on Dynamic Role-Centric RBAC Models2019 IEEE International Conference on System, Computation, Automation and Networking (ICSCAN)10.1109/ICSCAN.2019.8878827(1-6)Online publication date: Mar-2019
https://doi.org/10.1109/ICSCAN.2019.8878827

Index Terms

Context Information-based Application Access Control Model
1. Security and privacy
  1. Systems security
    1. Operating systems security

Recommendations

An attribute-based access matrix model
SAC '05: Proceedings of the 2005 ACM symposium on Applied computing

In traditional access control models like MAC, DAC, and RBAC, authorization decisions are determined according to identities of subjects and objects, which are authenticated by a system completely. Modern access control practices, such as DRM, trust ...
A generalized context-based access control model for pervasive environments
SPRINGL '09: Proceedings of the 2nd SIGSPATIAL ACM GIS 2009 International Workshop on Security and Privacy in GIS and LBS

Pervasive Computing Environments enable new opportunities for users to share and to access resources anytime and anywhere in a more natural way, making access control a critical issue. These heterogeneous and dynamic sensor-rich environments ...
A dynamic context-aware access control architecture for e-services

The universal adoption of the Internet and the emerging web services technologies constitutes the infrastructure that enables the provision of a new generation of e-services and applications. However, the provision of e-services through the Internet ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

IMCOM '16: Proceedings of the 10th International Conference on Ubiquitous Information Management and Communication

January 2016

658 pages

ISBN:9781450341424

DOI:10.1145/2857546

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 04 January 2016

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article
Research
Refereed limited

Conference

IMCOM '16

Sponsor:

SIGAPP
SKKU

IMCOM '16: The 10th International Conference on Ubiquitous Information Management and Communication

January 4 - 6, 2016

Danang, Viet Nam

Acceptance Rates

Overall Acceptance Rate 213 of 621 submissions, 34%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
105
Total Downloads

Downloads (Last 12 months)1
Downloads (Last 6 weeks)0

Reflects downloads up to 12 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Mohamed Sulaiyam ALAmri S(2021)An Intelligent Access Control ModelQuality Control - Intelligent Manufacturing, Robust Design and Charts10.5772/intechopen.95459Online publication date: 24-Mar-2021
https://doi.org/10.5772/intechopen.95459
Suganthy APrasanna Venkatesan V(2019)An Introspective Study on Dynamic Role-Centric RBAC Models2019 IEEE International Conference on System, Computation, Automation and Networking (ICSCAN)10.1109/ICSCAN.2019.8878827(1-6)Online publication date: Mar-2019
https://doi.org/10.1109/ICSCAN.2019.8878827

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

An attribute-based access matrix model

A generalized context-based access control model for pervasive environments

A dynamic context-aware access control architecture for e-services